[Mageia-dev] Freeze push: flash-player-plugin 11.2.202.262
Anssi Hannula
anssi at mageia.org
Thu Feb 7 23:41:13 CET 2013
As per advisory:
Adobe Flash Player 11.2.202.262 contains fixes to critical security
vulnerabilities found in earlier versions. These vulnerabilities could
cause a crash and potentially allow an attacker to take control of the
affected system.
This update resolves a buffer overflow vulnerability that could lead to
code execution (CVE-2013-0633).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2013-0634).
These vulnerabilities are already being exploited in the wild against
Windows and Macintosh systems.
References:
http://www.adobe.com/support/security/bulletins/apsb13-04.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0633
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0634
--
Anssi Hannula
More information about the Mageia-dev
mailing list